Segment routing over label distribution protocol

ABSTRACT

An apparatus and method is disclosed for segment routing (SR) over label distribution protocol (LDP). In one embodiment, the method includes a node receiving a packet with an attached segment ID. In response, the node may attach a label to the packet. Thereafter, the node may forward the packet with the attached label and segment ID to another node via a label switched path (LSP).

RELATED APPLICATIONS

The present patent application is a continuation of U.S. patentapplication Ser. No. 14/096,358, filed on Dec. 4, 2013, entitled“Segment Routing Over Label Distribution Protocol” which claims thedomestic benefit under Title 35 of the United States Code §119(e) ofU.S. Provisional Patent Application Ser. No. 61/791,242 entitled“Segment Routing,” filed Mar. 15, 2013. Both are hereby incorporated byreference in their entirety and for all purposes as if completely andfully set forth herein.

BACKGROUND

Packet forwarding is a process of relaying packets from onecommunication link to another by nodes in a network. A packet is aformatted unit of data that typically contains control information andpayload data. Control information may include: source and destination IPaddresses, error detection codes like checksums, sequencing information,etc. Control information is typically found in packet headers andtrailers, with payload data in between. Network nodes may take form inone or more routers, one or more bridges, one or more switches, or anyother suitable communications processing device.

At network nodes where multiple outgoing links are available, the choiceof link to use for packet forwarding requires a decision process that,while simple in concept, can be complex. Since packet forwardingdecisions are handled by nodes, the total time required for this canbecome a major limiting factor in overall network performance.

Label Distribution Protocol (LDP) is a mechanism where network nodes(e.g., routers) capable of Multiprotocol Label Switching (MPLS) exchangelabels with their neighbors. These labels can be subsequently attachedto packets and used by nodes to make packet forwarding decisions. Forpurposes of explanation only, nodes that make packet forwardingdecisions based on labels will be referred to as LDP nodes. Packetforwarding based on labels stands in stark contrast to traditionalInternet Protocol (IP) routing in which packet forwarding decisions aremade using IP addresses contained within packets. Because LDP nodes uselabels, there is no need for LDP nodes to examine the contents (e.g., IPaddresses) of packets to make packet forwarding decisions.

BRIEF DESCRIPTION OF THE DRAWINGS

The present disclosure may be better understood, and its numerousobjects, features, and advantages made apparent to those skilled in theart by referencing the accompanying drawings.

FIG. 1 is a block diagram illustrating an example network.

FIG. 2A is a block diagram illustrating an example network.

FIG. 2B is graphical representation of an example forwarding tablestored in a node.

FIG. 3A is a flow chart illustrating an example process employed by anode of FIG. 2A.

FIG. 3B is a flow chart illustrating an example process employed by anode of FIG. 2A.

FIG. 4 is a block diagram illustrating an example network.

FIG. 5A is a flow chart illustrating an example process implemented by anode in the network of in FIG. 4.

FIGS. 5B and 5C are graphical representations of an example forwardingtable stored in a node.

FIG. 6 is a flow chart illustrating an example process implemented by anode in the network of in FIG. 4.

FIG. 7 is a block diagram illustrating certain components of an examplenode that can be employed in the network of FIGS. 1, 2A or 4.

DETAILED DESCRIPTION Overview

An apparatus and method is disclosed for segment routing (SR) over labeldistribution protocol (LDP). In one embodiment, the method includes anode receiving a packet with an attached segment ID. In response, thenode may attach a label to the packet. Thereafter, the node may forwardthe packet with the attached label and segment ID to another node via alabel switched path (LSP).

Packet Forwarding

IP routing and Multiprotocol Label Switching (MPLS) are distinct packetforwarding mechanisms. IP routing uses IP addresses inside packetheaders to make forwarding decisions. In contrast, LDP nodes (i.e.,nodes employing MPLS) can make forwarding decisions using short pathidentifiers called labels that are attached to packets. Segment routing(SR) is yet another mechanism that can be employed. SR is similar toMPLS in many regards. For example, forwarding decisions in SR can bebased on short path identifiers called segment IDs that are attached topackets. However, substantial differences exist between SR and MPLS aswill be more fully described below.

IP Routing

IP routing uses routing tables that maintain forwarding information tovarious destinations. In one embodiment, when a packet arrives at anode, the node can use the destination IP address in the packet headerto access a routing table and lookup corresponding forwardinginformation such as an egress interface, which is the interface or portto be used to forward the packet to the next node on a path to thepacket's final destination. After the packet is forwarded the next nodeperforms its own routing table lookup using the same destination IPaddress, and so on.

MPLS and LDP

MPLS is commonly employed in provider networks or networks that providepacket transport and other services for customers. Packets enter an MPLSprovider network via an ingress provider edge (PE) node, travelhop-by-hop along a label-switched path (LSP) that includes one or morecore nodes, and exit the provider network via an egress PE node.

Packets are forwarded along an LSP based on LDP forwarding tables andlabels attached to packets. Labels allow for the use of very fast andsimple forwarding engines in the dataplane of LDP nodes. Another benefitof MPLS is the elimination of dependence on a particular Open SystemsInterconnection (OSI) model data link layer technology to forwardpackets.

A label is a short, fixed-length, locally significant identifier thatcan be associated with a forwarding equivalence class (FEC). Packetsassociated with the same FEC should follow the same LSP through theprovider network. LSPs can be established for a variety of purposes,such as to guarantee a certain level of performance when transmittingpackets, to forward packets around network congestion, to create IPtunnels for network-based virtual private networks, etc. In many ways,LSPs are no different than circuit-switched paths in ATM or Frame Relaynetworks, except that they are not dependent on a particular Layer 2technology.

LDP is employed in the control plane of LDP nodes. Two nodes, called LDPpeers, exchange label mapping information on a FEC by FEC basis. Theexchange of information can be bi-directional. LDP generates labels for,and exchanges labels between, peer nodes. LDP can be used to build andmaintain LDP forwarding tables that map labels and node interfaces.These forwarding tables can be subsequently used by nodes to forwardpackets through MPLS networks as more fully described below.

When a packet is received by an ingress PE node of an MPLS network, theingress PE node may determine a corresponding FEC. Characteristics fordetermining the FEC for a packet can vary, but typically thedetermination is based on the packet's destination IP address. Qualityof Service for the packet may also be used to determine the FEC. Oncedetermined, the ingress PE node can access a table to select a labelthat is mapped to the FEC. The table may also map an egress interface tothe FEC. Before the ingress PE node forwards the packet via the egressinterface, the ingress PE node pushes or attaches the label to thepacket.

A packet with attached label can be forwarded along an LSP, and nodes inthe LSP can make forwarding decisions based on labels. To illustrate,when an LDP node receives a packet with an attached label (i.e.,incoming label), an LDP forwarding table in the node can be accessed toread an egress interface and a label (i.e., an outgoing label) mapped tothe incoming label. Before the packet is forwarded via the egressinterface, the node may swap the incoming label with the outgoing label.The next hop receives the packet and attached label and may perform thesame process. This process is often called hop-by-hop forwarding along anon-explicit path. The egress PE node in the LSP may pop or remove anincoming label before the packet is forwarded to a customer. Toillustrate, FIG. 1 shows a portion of an example MPLS provider network100 that includes LDP nodes 102-122 coupled together via communicationlinks. An LSP from node 102 to node 122 can be created so that allpackets of a stream associated with a particular FEC sent from node 102to node 122 can travel forward through the same set of LDP nodes. Eachnode maintains information for the LSP established through it in an LDPforwarding table. If node 110 knows that node 114 is the next hop alongthe LSP for all packets received from node 102 that are destined fornode 122, node 110 can forward the packets to node 114.

Segment Routing

Segment routing (SR) is a mechanism in which packets can be forwardedusing SR forwarding tables and segment IDs attached to packets. LikeMPLS, SR enables very fast and simple forwarding engines in thedataplane of nodes. SR is not dependent on a particular Open SystemsInterconnection (OSI) model data link layer technology to forwardpackets.

SR nodes (i.e., nodes employing SR) are similar to LDP nodes in manyways. Since most SR nodes make forwarding decisions based on segment IDsas opposed to labels, however, SR nodes need not employ LDP in theircontrol planes. Unless otherwise indicated, an SR node lacks LDP in thecontrol plane. Additional differences can exist between SR nodes and LDPnodes.

SR can be employed in provider networks. Packets enter an SR enabledprovider network via an ingress provider edge (PE) node, travelhop-by-hop along a segment-switched path (SSP) that includes one or morecore nodes, and exit the provider network via an egress PE node. Theremaining disclosure will make reference to an autonomous, providernetwork that operates under one administrative domain. In general aprovider network may contain a contiguous set of nodes.

Like labels, segment IDs are short (relative to an IP address or a FEC),fixed-length identifiers. Segment IDs may correspond to topologicalsegments of a provider network or services provided by nodes thereof.Topological segments can be one hop paths to SR nodes, or they can bemulti hop paths to SR nodes. Topological segments act as sub-paths thatcan be combined to form an SSP. Stacks of segment IDs can represent SSPsas will be described below. Like LSPs, SSPs can be associated with FECs.Thus segment ID stacks may correspond to FECs.

There are several types of segment IDs including but not limited to:nodal-segment IDs, adjacency-segment IDs, and service-segment IDs. Anodal-segment ID represents a one-hop or a multi-hop, shortest path(SPT) within the provider network to an associated SR node.Nodal-segment IDs are assigned to respective SR nodes within theprovider network so that no two SR nodes in the provider network areassigned the same nodal-segment ID. In one embodiment, all assignednodal-segment IDs are selected from a predefined ID range (e.g., [64,5000]) for the provider network. The range for nodal-segment IDs may bedifferent from a predefined range for labels.

Nodal-segment IDs can be mapped in memory to unique identifiers. Forpurposes of explanation only, nodal-segment IDs are mapped to respectivenode loopback prefix IP addresses. One of ordinary skill understandsthat node loopback prefix IP addresses (node prefixes for short)distinguish the SR nodes from each other within the provider network.The node prefixes can be used by link state protocols such as openshortest path first (OSPF) or intermediate system to intermediate system(IS-IS), or modifications thereof, operating in the control plan of anSR node to identify egress interfaces for shortest paths (SPTs) torespective SR nodes. Once identified, the SPT egress interfaces can bemapped to nodal-segment IDs within an SR forwarding table as the SRforwarding table is created or subsequently updated.

An adjacency-segment ID represents a link between adjacent SR nodes. Forpurposes of explanation only, this disclosure will refer to a linkbetween nodes as an adjacency segment (hereafter adjacency). Adjacenciescan be uniquely identified in the provider network. For purposes ofexplanation only, this disclosure will identify an adjacency (hereafteradjacency-ID) using the node prefixes of nodes between which theadjacency is immediately positioned. To illustrate, for an adjacencybetween two nodes identified by node prefix X and node prefix Y, theadjacency will be identified herein as adjacency-ID XY. This disclosurewill presume that only one adjacency exists between nodes in theprovider network, it being understood the present disclosure should notbe limited thereto. As such, adjacencies are unique in the providernetwork of this disclosure. Since adjacencies are unique, it followsthat adjacency-IDs are likewise unique. Adjacency-IDs should not beconfused with adjacency-segment IDs; adjacency-segment IDs may not beunique within the provider network domain.

Each SR node can assign a distinct adjacency-segment ID for each of theSR node's adjacencies. Separate SR nodes may assign the sameadjacency-segment ID. Adjacency-segment IDs, however, are locallysignificant; separate SR nodes may assign the same adjacency-segment ID,but that adjacency-segment ID represents distinct adjacencies. In oneembodiment, adjacency-segment IDs are selected from a predefined rangethat is outside the predefined range for nodal-segment IDs. Thepredefined range of adjacency-segment IDs may also be outside thepredefined range for labels.

Service-segment IDs correspond to packet services performed by SR nodessuch as deep packet inspection (DPI) and/or filtering. Each SR node canassign a distinct service-segment ID for each of the SR node's packetservices. For the purposes of explanation only, a node will offer nomore than one service. Service-segment IDs are locally significant. Likeadjacency-IDs, separate SR nodes may assign the same service-segment IDfor their respective services. Service-segment IDs can be selected fromthe same range as the adjacency-segment IDs, or service-segment IDs canselected from a predefined range that is distinct from the ranges forlabels, adjacency-segment IDs and/or nodal-segment IDs. Theservice-segment IDs can be assigned based on service type, it beingunderstood the present disclosure should not be limited thereto. As anexample, adjacency-segment ID 5001 is always mapped to deep packetinspection within the provider network, regardless of the node or nodesthat perform the service.

SR nodes can advertise their nodal-segment IDs, adjacency-segment IDs,service-segment IDs, and node prefixes to other SR nodes in the providernetwork using a protocol such as interior gateway protocol (IGP) or amodification thereof. SR nodes can use the nodal-segment IDs,adjacency-segment IDs, service-segment IDs, node prefixes, and/or otherinformation to create or update SR forwarding tables and/or segment IDstacks.

In one embodiment the SR nodes can advertise their nodal-segment ID/nodeprefix pairs, adjacency-segment ID/adjacency-ID pairs, and/orservice-segment ID/node prefix pairs. The control planes of an SR nodecan receive and use the nodal-segment ID/node prefix pairs and alink-state protocol such as IS-IS or OSPF, or modified versions thereof,to identify egress interfaces for SPTs to SR nodes. An SPT egressinterface, once identified, can be mapped to its respectivenodal-segment ID in the node's SR forwarding table. Nodes also map theiradjacency-segment IDs to egress interfaces for respective adjacencies inSR forwarding tables. Because adjacency-segment IDs are locallysignificant, however, adjacency-segment IDs should only be mapped in SRforwarding tables of the nodes that advertise the adjacency-segment IDs.In other words, an SR node that advertises an adjacency-segmentID/adjacency-ID pair should be the only node in the provider networkthat has a SR forwarding table that maps the adjacency-segment ID to anegress interface connected to an adjacency identified by theadjacency-ID. Service-segment IDs are also locally significant andshould only be mapped in the nodes in which they are advertised. Unlikeadjacency-segment IDs, however, service-segment IDs are not mapped toegress interfaces. Rather, the service-segment IDs are mapped torespective services that can be implemented by the node.

Segment Routing (SR) enables segment-switched paths (SSPs), which can beused for transporting packets through the provider network. Like LSPs,SSPs are typically associated with FECs, and can be established for avariety of purposes, such as to guarantee a certain level ofperformance. Packets associated with the same FEC will typically followthe same SSP of SR nodes through the provider network. Nodes in SSPsmake forwarding decisions based on segment IDs, not based on thecontents (e.g., destination IP addresses) of packets. As such, packetforwarding in SSPs is not dependent on a particular Layer 2 technology.

SR nodes can use nodal-segment IDs, adjacency-segment IDs, andservice-segment IDs they receive in advertisements from other SR nodesin order to create ordered lists of segment IDs (i.e., segment IDstacks). Segment ID stacks correspond to SSPs, respectively, thatforward packets between nodes (e.g., SR enabled ingress and egressnodes) in the provider network. Segment IDs in a stack may correspond torespective segments or sub paths of a corresponding SSP. When an SRsource node (e.g., an SR ingress PE node) receives a packet, the nodecan calculate a FEC for the packet in much the same way that LDP ingressPE nodes calculate FECs for packets received from a customer edgerouter. The SR source node uses the FEC it calculates to select asegment ID stack mapped thereto. The SR source node can add the selectedsegment ID stack to a header, and then attach the header to the packet.The packet with attached stack can traverse the segments of the SSP inan order that corresponds to the list order of the segment IDs in thestack. A forwarding engine operating in the dataplane of each SR nodecan use a segment ID within the stack and an SR forwarding table inorder to forward the packet and header to the next node in the SSP. Asthe packet and attached header are forwarded along the SSP in ahop-by-hop fashion, the attached stack of segment IDs remains unchangedin one embodiment.

To illustrate general concepts of SR, FIG. 2A shows: a portion of anexample SR enabled provider network 202 that is in data communicationwith customer edge routers CE1 and CE2; an example header 226 containingan example segment ID stack 224, and; an example SR forwarding table240.

Provider network 202 consists of SR nodes 204-222. Nodes 204-210 areassigned unique nodal-segment IDs 64-67, respectively, SR enabledrouters 212-218 are assigned unique nodal-segment ID's 68-71,respectively, and SR enabled router 222 is assigned unique nodal-segmentID of 72. Each of the SR nodes 204-222 have interfaces that areidentified as shown. For example, node 204 has three interfacesdesignated 1-3, respectively. Each of the nodes 204-222 is assigned anode prefix that is unique within network 202. Node prefixes A-D areprovided for nodes 204-210, respectively, node prefixes M-P are providedfor nodes 212-218 respectively, and node prefix Z is provided for node222. As noted above, these node prefixes are unique within network 202and can be used for several purposes such as calculating the topology ofnetwork 202, which in turn can be used to calculate SPTs. Nodes 204-222can also assign locally significant adjacency-segment IDs and/orservice-segment IDs. For example, node 208 can assign adjacency-segmentIDs 9001-9003 for adjacencies CB, CD, and CO, respectively, and node 208can assign service-segment ID 5001 for a deep packet inspection serviceprovided by the node.

Each of SR nodes 204-222 can advertise its service-segment ID,adjacency-segment ID(s), nodal-segment ID, and node prefix to the othernodes in network 202. For example, node 208 can generate and send one ormore advertisements that: map adjacency-segment IDs 9001-9003 toadjacency IDs CB, CD, and CO, respectively; map nodal-segment ID 66 tonode prefix C, and; map service-segment ID 5001 to a deep packetinspection service. Using the advertisements they receive, the controlplanes of nodes 204-222 can generate respective SR forwarding tables foruse in the dataplanes. For example, node 208 can generate example SRforwarding table 240 using a link state protocol and the advertisementsthat node 208 receives directly or indirectly from nodes 204, 206, 210,212-218, and 222. Example SR forwarding table 240 maps adjacency-segmentIDs 9001-9003 to node interface IDs 1-3, respectively, and nodal-segmentIDs such as 64, 65, 67, 70, and 72, to node 208 interface identifiers 1,1, 2, 3, and 2, respectively, which are the SPT egress interfaceidentifiers determined by node 208 for node prefixes A, B, D, 0, and Zrespectively. It is noted that in the embodiment shown, only SRforwarding table 240 maps adjacency-segment IDs 9001-9003 to interfaceidentifiers; SR forwarding tables in the other nodes of network 202should not map adjacency-segment IDs 9001-9003.

In addition to creating SR forwarding tables based on received segmentID advertisements, several SR nodes 204-222 can calculate segment IDstacks for respective SSPs. For example, node 204 calculates examplesegment ID stack 224 for an SSP between ingress node 204 and egress node222. Example segment stack 224 can be calculated for a particular FEC(e.g., FEC F).

Example stack 224 includes four segment IDs: nodal-segment IDs 66 and 72advertised by nodes 208 and 222, respectively; service-segment ID 5001advertised by node 208, and; adjacency-segment ID 9003 advertised bynode 208. Stack 224 corresponds to an SSP in which packets flow in orderthrough nodes 204, 206, 208, 216, 218, and 222. Packets flowing throughthis SSP are also subjected to the deep packet inspection serviceprovided by node 208.

SR node 204 is an ingress PE node for packets received from customeredge router CE1. In response to receiving a packet, ingress SR node 204can calculate a FEC based upon, for example, one or more IP addressescontained within the packet. After calculating the FEC for the packet,node 204 can select a segment ID stack, which is mapped to thecalculated FEC from a table stored in memory (not shown). For example,node 204 can calculate FEC F for packet P based on the destination IPaddress in packet P. As noted above, FEC F is mapped to example stack224. Node 204 may then create a header such as header 226 for packet Pthat contains the selected segment ID stack 224. Example header 226, asshown in FIG. 2A, also includes an active segment ID pointer 230. Theactive segment ID pointer points to or identifies a segment ID(hereafter the active segment ID) in the stack that an SR node shouldconsider when the node receives the packet and attached header. When theheader is first created the active segment ID pointer 230 should be setto 1, thereby pointing to the first segment ID of the stack. In someembodiments, a header may include identifications (e.g., respectivenodal-segment IDs or node prefixes) of the source and destination (e.g.,ingress and egress nodes) for the associated SSP. In FIG. 2A,nodal-segment IDs are used for source identification 232 and destinationidentification 234 in example header 226. Additional information such asTTL may be included in headers.

Example segment stack 224 lists segment IDs that correspond to one hopand multi hop segments of provider network 202 that packets with stack224 traverse to reach egress node 222. The segments collectively formthe SSP corresponding to stack 224. Once header 226 is attached topacket P, ingress SR enable node 204 may access a SR forwarding table(not shown) using the active segment ID of the segment ID stack 224.Again, the active segment ID is identified by the active segment IDpointer 230. In the embodiment shown in FIG. 2A, active segment IDpointer is set to 1 at ingress SR node 204. Accordingly, the activesegment ID within header 226 is nodal-segment ID 66. SR node 204accesses its SR forwarding table using nodal-segment ID 66 to readegress interface identifier 2 mapped, which is the egress interface forthe SPT to the SR node that is assigned nodal-segment ID 66.

With continuing reference to FIG. 2A, FIG. 3A illustrates exampleaspects of packet forwarding using SR according to one embodiment. Moreparticularly, FIG. 3A illustrates an example method performed by an SRnode in a provider network like that shown in FIG. 2A in response toreceiving a packet with an attached header H, or in response toattaching a header H to a packet. The first step in the method is adetermination of whether the SR node is the destination node of the SSP.There are many ways this can be implemented. For example, if the activesegment ID pointer cannot be incremented because the active segment IDis the last segment ID in the stack, the SR node is the destination. Inthe embodiment shown if the destination nodal-segment ID in header Hequals the SR node's nodal-segment ID, the SR node is the destination,and the SR node detaches header H before forwarding the packet using,for example, IP routing. Otherwise, the SR node proceeds to determinethe active segment ID in the segment ID stack. More particularly, the SRnode reads the active segment ID pointer to identify the active segmentID of the segment ID stack. The SR node then determines whether theactive segment ID is equal to the nodal-segment ID assigned to the SRnode. Step 304 can be performed by the SR node by comparing the activesegment ID with the nodal-segment ID assigned to the SR node. If the SRnode determines that the active segment ID is the node's nodal-segmentID, the process proceeds to step 306 where the SR node increments theactive segment ID pointer, which in turn identifies the next or newactive segment ID. After the SR node increments the active segmentpointer in step 306, the SR node determines whether the active segmentID is a service-segment ID for a service to be performed by the SR node.This step can be implemented simply by comparing the active segment IDwith a service-segment ID mapped to a service in memory of the SR node,or by comparing the active segment ID with a range of IDs that arereserved for service-segment IDs. If the SR node determines in step 310that the active segment ID is a service-segment ID, then the processproceeds to step 312 where the SR node implements the offered service onpacket P. Thereafter, in step 314 the SR node increments the activesegment ID pointer, which in turn identifies the next or the new activesegment ID in the segment ID stack.

Presuming the active segment ID does not equal the SR node'snodal-segment ID in step 304, or the active segment ID is not aservice-segment ID as determined in step 310, the process proceeds tostep 316 where the SR node accesses its SR forwarding table to read theegress interface ID that is mapped to the active segment ID. In step 320the SR node determines whether the active segment ID is anadjacency-segment ID or a nodal-segment ID. This determination may beimplemented by simply comparing the active segment ID with thedesignated range of nodal-segment IDs that are available for assignmentwithin the network. Thus, if the active segment ID is found to be anumber within the designated range, the active segment ID is anodal-segment ID and the SR node forwards packet P and attached header Hto the next node via the egress interface that is identified in step316. Otherwise, the active segment ID is an adjacency-segment ID, andthe active segment pointer 324 is incremented before packet P and headerH are forwarded to the next node via the egress interface that isidentified in step 316.

It is noted that in an alternative embodiment, an active segment IDpointer is not needed. In this alternative embodiment, the segment ID atthe top of the stack is considered the active segment ID, and segmentIDs can be popped from the segment ID stack at steps 306, 314 or 324instead of incrementing a pointer in the header as shown. In thisalternative embodiment, however, the stack changes substantially as thepacket and header traverse the SSP.

With continuing reference to FIG. 3A, FIG. 2A shows packet P and thestate of active segment pointer 230 as packet P and header H areforwarded by nodes of the SSP corresponding to segment stack 224. Asshown, pointer 230 does not change as nodes 204 and 206 forward packet Pand header 226. However, the active segment pointer 230 is incrementedtwice at node 208 in accordance with steps 306 and 314 respectively.Nodes 216 and 218 forward packet P and header 226 without incrementingactive segment pointer 230. SR egress PE node 222 recognizes thedestination nodal-segment ID as its own nodal-segment ID, and as aresult node 222 detaches header 226 from packet P in accordance withstep 305. Eventually, node 222 may employ traditional IP routing andforward packet P to CE2 based on routing table lookup using thedestination IP address within packet P.

FIG. 3A illustrates an example method employed by SR nodes whenforwarding a packet P with attached header H using, for example, the SRforwarding table 240 shown within FIG. 2A. Other SR forwarding methodsare contemplated. For example, one alternative method for forwardingpackets in SR nodes employs a slightly different SR forwarding table. Inthis alternative embodiment, a stack instruction can be added to the SRnode forwarding table. This stack instruction, when implemented canchange the active segment pointer within header H without having to gothrough a comparatively complex method like that shown within FIG. 3A.FIG. 2B illustrates an example SR forwarding table that includes stackinstructions mapped to segment IDs. In one embodiment, the stackinstructions are limited to increment (Inc.), which instructs the SRnode to increment the active segment pointer, and continue (Cont.),which instructs the SR node to leave the active segment pointer ID asis. Other stack instructions are contemplated. In contrast to the SRforwarding table 240 shown in FIG. 2A, the SR forwarding table 241 shownin FIG. 2B may include service-segment IDs, and the nodal-segment ID forthe SR node that contains the table. To illustrate, the SR forwardingtable 241 shown in FIG. 2B illustrates an example of the alternativethat can be employed in node 208 shown within FIG. 2A. As can be seen inFIG. 2B, example table 241 includes nodal-segment ID 66, which isassigned to SR node 208, and service-segment ID 5001, which correspondsto the deep packet inspection service provided by node 208. Thesesegment IDs, however, are not mapped to egress interface identifiers inSR forwarding table 241. Rather, nodal-segment ID 66 and service-segmentID 5001 are mapped to null.

With continuing reference to FIGS. 2A, 2B, FIG. 3B illustrates analternative method that can be employed by an SR node in FIG. 2A usingthe alternative SR forwarding table such as that shown within FIG. 2B.The process in FIG. 3B starts when an SR node receives a packet P withattached header H such as header 226 shown within FIG. 2A, or when theSR node attaches header H to packet P. The SR node determines whetherthe destination-nodal segment ID 234 within H is equal to the SR node'snodal-segment ID. If these two nodal segment IDs are equal in step 372,the packet has reached the last SR node in the SSP, and as a result theSR node pops header H before forwarding packet P to, for example,customer edge router such as CE2. However, if the destinationnodal-segment ID does not equal the SR node's nodal-segment ID, theprocess proceeds to step 376 where the SR node reads the egressinterface identifier mapped to the active segment ID within the SRforwarding table. Then the SR node implements the stack instruction thatis mapped to the active segment ID. Again, in this embodiment, the stackinstruction, which is implemented by the forwarding engine in oneembodiment, increments the active segment pointer if the mappedinstruction is set to increment, or does not increment the activesegment pointer if the mapped instruction is set to continue. In step380, the SR node determines whether the egress interface identifier thatwas read in step 376 is set to null. Again, an egress interfaceidentifier is set to null when it is mapped to the SR node'snodal-segment ID or when the egress interface identifier is mapped tothe SR node's service-segment ID. It is noted that, although not shownwithin FIG. 3B, the SR node will implement the service associated withthe service-segment ID prior to implementing the stack instructionmapped to the service-segment ID within the SR forwarding table. At anyrate, if the egress interface identifier read in step 376 is set tonull, the SR node repeats step 376. Otherwise, the SR node forwardspacket P and attached header H to the next SR node via the egressinterface that was read in step 376 as shown in step 382.

SR over LDP

FIGS. 1 and 2A illustrate example provider networks that contain LDPnodes and SR nodes, respectively. Some providers may seek to presenthybrid networks or networks that contain both LDP and SR nodes. However,the differences in the packet forwarding mechanisms described above withrespect to SR nodes and LDP may preclude interoperability between SR andLDP nodes when directly coupled to each other. Hybrid provider networks,however, can be configured to enable packet transport or other servicesfor customers. For example, SR/LDP nodes, or nodes that have SR and LDPcharacteristics, can be positioned between SR nodes and LDP nodes toenable packet forwarding therebetween. FIG. 4 illustrates a portion ofan example provider network 400 that employs SR/LDP nodes. Network 400can provide packet transport and other services to customers via an SSPthat flows over an LSP that includes one or more core LDP and SR/LDPnodes as will be more fully described.

Provider network 400 includes nodes 402-420 coupled between customeredge routers CE1-CE3. PE Nodes 402, 412, and 420 are SR enabled, corenodes 406 and 414 are LDP enabled, core nodes 410 and 418 are SRenabled, and core nodes 404, 408, and 416 are SR/LDP enabled. In FIG. 4the PE SR nodes, the core SR nodes, and the core LDP nodes operate insubstantially the same manner as the PE SR nodes, the core SR nodes, andthe core LDP nodes described above. Each of the core SR/LDP nodes ofFIG. 4 implements a slightly different version of SR, LDP and MPLSdescribed above.

All nodes in a hybrid provider network are assigned respective nodeprefixes that are unique within the provider network. Nodes 402-420 areassigned node prefixes A-J, respectively. Each of the nodes canadvertise its node prefix using an IGP protocol or a modificationthereof. Each of these advertisements may include a node type identifierthat indicates the node's type as LDP enabled, SR enabled, or SR/LDPenabled. The node prefix advertisements allow each of the nodes 401-420to create a topology map of provider network 400. In one embodiment, thetopology map may include information that identifies those nodes thatare LDP enabled, SR enabled, and SR/LDP enabled using the node typeidentifiers mentioned above. Using a link state protocol like IS-IS orOSPF, each of the nodes 402- 420 can create a routing table that mapsSPT egress interfaces to node prefixes for the nodes.

All SR and SR/LDP nodes in network 400 are assigned a uniquenodal-segment ID. Moreover, adjacencies and services are assignedadjacency-segment IDs and service-segment IDs, respectively, inaccordance with the SR principles set forth above. For purposes ofexplanation only, SR/LDP nodes in network 400 do not advertiseadjacency-segment IDs for adjacencies directly coupling LDP nodes.

The SR and SR/LDP nodes in network 400 can advertise their respectivenodal-segment IDs, adjacency-segment IDs and service-segment IDs to allother nodes in the network. For example, each SR or SR/LDP node mayadvertise its nodal-segment ID/node prefix mapping, and itsadjacency-segment ID/adjacency ID mapping(s) to all other nodes. If anSR or SR/LDP offers a service, the node may also advertise aservice-segment ID/service mapping. LDP nodes 406 and 414 will notunderstand the segment ID advertisements they receive. One skilled inthe art understands that SR nodes and SR/LDP nodes do not receivesegment ID advertisements from LDP nodes.

Each SR/LDP node in a hybrid network like that shown in FIG. 4 can storeinformation indicating whether any of its directly coupled neighbors areLDP nodes (e.g., LDP nodes 406 and 414). In one embodiment, each SR/LDPnode may create an LDP interface table in memory, which indicates thoseinterfaces of the SR/LDP node that are directly coupled or adjacent toLDP nodes, and those interfaces that are not. For example SR/LDP node404 can create an LDP interface table 450 in memory, which indicatesthat only interface IDs 2 and 3 are directly coupled to LDP nodes (i.e.,LDP nodes 406 and 414). Each SR/LDP node can create an LDP interfacetable using the node type identifiers of the node prefix advertisementsmentioned above. Other methods for creating LDP interface tables arecontemplated.

LDP and SR/LDP nodes in network 400 can bi-directionally exchanginglabel mappings using standard LDP. The exchange enables the creation ofLDP forwarding tables and thus LSPs between SR/LDP nodes via LDP nodesin network 400. For the purposes of explanation only, these LSPs will bereferred to as core LSPs, and the SR/LDP nodes of these core LSPs willbe referred to as core source nodes and/or core destination nodes. It isnoted that in an alternative embodiment, core LSPs can facilitatetransmission of packets between a source SR/LDP node and a destinationSR node via a core LSP. However, the remaining disclosure will presumecore LSPs between SR/LDP nodes, it being understood the disclosureshould not be limited thereto.

Core LDP nodes in network 400 can create their LDP forwarding tables inthe same manner as the LDP nodes of FIG. 1. As a result these LDPforwarding tables can map incoming labels to respective outgoinglabel/egress interface ID pairs. These mappings enable label swappingduring packet forwarding.

LDP forwarding tables in SR/LDP nodes in one embodiment do not mapincoming labels to respective outgoing label/egress interface ID pairs.Each SR/LDP node can create an LDP forwarding table that maps outgoinglabels/egress interface ID pairs to respective node prefixes fordestination SR/LDP nodes that can be reached via respective core LSPs.For example, SR/LDP node 404 can create an LDP forwarding table thatmaps outgoing label L1/egress interface ID 2 to node prefix D, andoutgoing label L2/egress interface ID 3 to node prefix H. These LDPforwarding table mappings enable SR/LDP node 404 to forward packets onseparate core LSPs to SR/LDP nodes 408 and 416. In this embodiment, theLDP forwarding tables for SR/LDP nodes enable label push and popoperations as will be more fully described below.

Each SR and SR/LDP node in a hybrid network can create an SR forwardingtable. The SR nodes can create their SR forwarding tables in the samemanner as described above with respect to FIG. 2A. The SR/LDP nodes,however, may create their SR forwarding tables in a slightly differentmanner. The SR forwarding tables of SR/LDP nodes enable interoperabilitybetween SR nodes and LDP nodes.

Like SR nodes, SR/LDP nodes can identify the SPT egress interface ID foreach SR or SR/LDP node using the node's advertised node prefix. The SPTegress interface ID is then mapped in the SR forwarding table to thenodal-segment ID that is assigned to the SR or SR/LDP node. Afternodal-segment IDs are mapped to SPT egress interface IDs, the SRforwarding table should be updated to account for intervening LDP nodes.More particularly the SR forwarding table should be updated to accountfor SPT egress interface IDs that are adjacent to LDP nodes. In oneembodiment, SR/LDP nodes can use their LDP interface tables (e.g., table450) mentioned above to identify SPT egress interface IDs that aremapped in the SR forwarding table to adjacent LDP nodes. When such anSPT egress interface ID is identified, the SR/LDP node can use itsrouting table to identify the topologically nearest or first SR/LDP nodein the SPT. The SPT egress interface ID is then swapped in the SRforwarding table with the node prefix for the nearest SR/LDP node in theSPT. FIG. 5A is an example method for updating the SR forwarding table.

The SR forwarding table updating method of FIG. 5A starts with step 502in which the SR/LDP node identifies an SPT egress interface ID that ismapped to an adjacent LDP node. The identified SPT egress interface IDis mapped to a nodal-segment ID in the SR forwarding table. SR/LDP nodereceived an advertisement that maps this nodal-segment ID to a nodeprefix. In step 504, using this node prefix and a topology map ofnetwork 400, the SR/LDP node identifies the nearest SR/LDP in the SPT tothe node prefix. Thereafter, the SR/LDP node swaps the nodal-segment IDmapped to the SPT egress interface identified in step 502 with the nodeprefix of the SR/LDP node identified in step 504. SR/LDP node can usethe LDP interface table to identify, if any, additional SPT egressinterface IDs in the SR forwarding table that are mapped to adjacent LDPnodes. The method shown in FIG. 5A can be applied to all SPT egressinterface IDs in the SR forwarding table that are mapped to adjacent LDPnodes. Once this process has completed, the SR forwarding table mayinclude several nodal-segment IDs that are mapped to node prefixes.FIGS. 5B and 5C represent an example SR forwarding table for SR/LDP node404 before and after the process of FIG. 5A is applied.

SR nodes within the hybrid provider network 400, including PE SR nodes,can forward packets in accordance with the process described withreference to FIGS. 3A or 3B. SR/LDP nodes may employ a slightlydifferent process. In general, to enable interoperability between coreSR nodes and core LDP nodes, an SR/LDP node can attach or push a labelonto a segment ID stack for a packet that is received from an SR nodebefore the SR/LDP forwards the packet to an LDP node, and an SR/LDP nodecan remove or pop a label from the segment ID stack attached to a packetthat is received from an LDP node before the SR/LDP node forwards thepacket to an SR node.

With continuing reference to FIG. 4, FIG. 6 illustrates an exampleprocess employed by SR/LDP nodes to enable packet forwarding between SRnodes and LDP nodes. The process in FIG. 6 begins when an SR/LDP node,such as SR/LDP node 404, receives a packet P with attached header H, anexample of which is shown above in FIG. 4. In general, if the packet Pand header H are received from an SR node, the header H will lack alabel, and if the packet P and header H are received from an LDP node,the header H will contain a label. In the example shown in FIG. 4,packet P and header H is received by node 404 from SR node 402, and as aresult header H lacks a label.

The SR/LDP node determines in step 604 whether a label has been added tothe header H. In one embodiment, a label can be added to a header bypushing the label on the segment ID stack. There are numerous ways inwhich step 604 can be implemented. For example, the SR/LDP can presumethat a label is attached if the SR/LDP node receives the packet P via aninterface that is adjacent to an LDP node. The LDP interface tablementioned above can be used by the SR/LDP node to make a determinationof whether a packet was received at an interface adjacent to an LDPnode. Alternatively, in the embodiment where the labels are pushed ontosegment ID stacks and are selected from a range that is distinct fromthe range from which nodal-segment IDs, adjacency-segment IDs, andservice-segment IDs are selected, the SR/LDP node can determine thefirst entry of the segment ID stack is a label if the first entry fallswithin the range reserved for labels. Ultimately, if the SR/LDP nodedetermines header H contains a label, the label is removed or popped offin step 606. Thereafter, or in response to determining that header Hlacks a label, the process proceeds to step 610.

Step 610 is similar to step 304 shown within FIG. 3A. Indeed, many ofthe steps shown in FIG. 6 are similar to steps shown in FIG. 3A. In step610, the forwarding engine within the SR/LDP node determines whether theactive segment ID of the segment ID stack is equal to the SR/LDP node'snodal-segment ID. Again, it is noted that header H includes a pointerthat identifies the active segment ID. The pointer may change as thepacket flows through the SSP. If it is determined in step 610 that theactive segment ID is equal to the SR/LDP node's nodal-segment ID, theprocess proceeds to step 612 where the SR/LDP node increments the activesegment pointer. The SR/LDP node then determines whether the activesegment ID is a service-segment ID for a service offered by the SR/LDPnode. If it is, that service is implemented on packet P by the SR/LDPnode, and the active segment pointer is incremented in step 620.

If the active segment ID is not a service-segment ID determined in step614, or if the active segment ID does not equal the SR/LDP node'snodal-segment ID in step 610, the process proceeds to step 622 where theSR/LDP node accesses its SR forwarding table to read the egressinterface ID or a node prefix mapped to the active segment ID. In step624, the SR/LDP node determines whether an egress interface ID or nodeprefix is mapped to the active segment ID in the SR forwarding table. Ifthe active segment ID is mapped to an egress interface ID, then theSR/LDP node determines in step 626 whether the active segment ID is anadjacency-segment ID or a nodal-segment ID. If the active segment ID isan adjacency-segment ID, the process follows to step 630 and the SR/LDPnode increments the active segment pointer before forwarding packet Pand attached header H to the next node via the egress interface mappedto the active segment ID in the SR forwarding table as shown in step632. If it is determined in step 626 that the active segment ID is anodal-segment ID, then the SR/LDP node proceeds to forward packet P andattached header H without incrementing the pointer as shown in step 632.

If the SR/LDP node determines in step 624 that a node prefix is mappedto the active segment ID, then the process proceeds to step 634 wherethe SR/LDP node accesses the SR/LDP node's LDP forwarding table to readthe label and egress interface ID mapped to the node prefix. The SR/LDPnode then adds or pushes that label onto the segment ID stack withinheader H. Thereafter, the SR/LDP node forwards the packet P and attachedheader H to the next LDP node via the egress interface identified instep 634, and the process ends. FIG. 4 illustrates an example label L1pushed onto the stack of example header H before SR/LDP node 404forwards packet P and header H to LDP node 406 in accordance with step640.

FIG. 7 is a block diagram illustrating certain additional and/oralternative components of nodes that can be employed in the networksshown in FIGS. 1, 2A, and 4. In this depiction, node 700 includes anumber of line cards (line cards 702(1)-(N)) that are communicativelycoupled to a forwarding engine or packet forwarder 710 and a processor720 via a data bus 730 and a result bus 740. Line cards 702(1)-(N)include a number of port processors 750(1,1)-(N,N) which are controlledby port processor controllers 760(1)-(N). It will also be noted thatforwarding engine 710 and processor 720 are not only coupled to oneanother via data bus 730 and result bus 740, but are alsocommunicatively coupled to one another by a communications link 770.

The processors 750 and 760 of each line card 702 may be mounted on asingle printed circuit board. When a packet or packet and header arereceived, the packet or packet and header may be identified and analyzedby router 700 in the following manner. Upon receipt, a packet (or someor all of its control information) or packet and header is sent from theone of port processors 750(1,1)-(N,N) at which the packet or packet andheader was received to one or more of those devices coupled to data bus730 (e.g., others of port processors 650(1,1)-(N,N), forwarding engine710 and/or processor 720). Handling of the packet or packet and headercan be determined, for example, by forwarding engine 710. For example,forwarding engine 710 may determine that the packet or packet and headershould be forwarded to one or more of port processors 750(1,1)-(N,N).This can be accomplished by indicating to corresponding one(s) of portprocessor controllers 760(1)-(N) that the copy of the packet or packetand header held in the given one(s) of port processors 750(1,1)-(N,N)should be forwarded to the appropriate one of port processors750(1,1)-(N,N). In addition, or alternatively, once a packet or packetand header has been identified for processing, forwarding engine 710,processor 720 or the like can be used to process the packet or packetand header in some manner or add packet security information, in orderto secure the packet. On a node sourcing such a packet or packet andheader, this processing can include, for example, encryption of some orall of the packet's or packet and header's information, the addition ofa digital signature or some other information or processing capable ofsecuring the packet or packet and header. On a node receiving such aprocessed packet or packet and header, the corresponding process isperformed to recover or validate the packet's or packet and header'sinformation that has been thusly protected.

Although the present invention has been described in connection withseveral embodiments, the invention is not intended to be limited to thespecific forms set forth herein. On the contrary, it is intended tocover such alternatives, modifications, and equivalents as can bereasonably included within the scope of the invention as defined by theappended claims.

We claim:
 1. A method comprising: receiving a packet with an attachedfirst nodal segment ID and a first label, wherein the packet is receivedby a segment routing/label distribution protocol (SR/LDP) node, whereinthe first nodal segment ID was advertised by a first node; detaching thefirst label from the packet; forwarding the packet with the attachedfirst nodal segment ID toward the first node.
 2. The method of claim 1wherein the packet is received by the SR/LDP node with a second nodalsegment ID attached to it, wherein the second nodal segment ID wasadvertised by the SR/LDP node.
 3. The method of claim 2 wherein thepacket is received by the SR/LDP node with a pointer that points to thesecond nodal segment ID, and wherein the method further comprises theSR/LDP node incrementing the pointer to point to the first nodal segmentID before the SR/LDP node forwards the packet with the attached firstnodal segment ID toward the first node.
 4. The method of claim 1 whereinthe packet is received by the SR/LDP node with a second nodal segment IDand an adjacency segment ID attached to it, wherein the second nodalsegment ID and adjacency segment ID were advertised by the SR/LDP node.5. The method of claim 4 wherein the packet is received by the SR/LDPnode with a pointer that points to the second nodal segment ID, andwherein the method further comprises: incrementing the pointer to pointto the adjacency segment ID; incrementing the pointer to point to thefirst nodal segment ID after the pointer is incremented to point to theadjacency segment ID and before the SR/LDP node forwards the packet withthe attached first nodal segment ID toward the first node.
 6. The methodof claim 1 wherein the packet is received by the SR/LDP node with asecond nodal segment ID and an service segment ID attached to it,wherein the second nodal segment ID and service segment ID wereadvertised by the SR/LDP node.
 7. The method of claim 6 wherein thepacket is received by the SR/LDP node with a pointer that points to thesecond nodal segment ID, and wherein the method further comprises:incrementing the pointer to point to the service segment ID; processingthe received packet in response to incrementing the pointer to point tothe service segment ID; incrementing the pointer to point to the firstnodal segment ID after the packet is processed and before the SR/LDPnode forwards the packet with the attached first nodal segment ID towardthe first node.
 8. The method of claim 7 wherein the packet is processedin accordance with a deep packet inspection algorithm.
 9. The method ofclaim 1 further comprising: attaching a second label to the packet;forwarding the packet with the attached first label and the attachedfirst nodal segment to an LDP node.
 10. An apparatus comprising: asegment routing/label distribution protocol (SR/LDP) node comprising aninput interface and an output interface, wherein the input interface isconfigured to receive a packet with an attached first nodal segment IDand an attached first label, wherein the first nodal segment ID wasadvertised by a first node; the SR/LDP node comprising a module fordetaching the first label from the packet; the SR/LDP node comprising aforwarding module for forwarding the packet with attached first nodalsegment towards the first node via the output interface.
 11. Theapparatus of claim 10 wherein the packet is receivable by the SR/LDPnode with a second nodal segment ID attached to it, wherein the secondnodal segment ID was advertised by the SR/LDP node.
 12. The apparatus ofclaim 10 wherein the packet comprises a pointer that points to thesecond nodal segment ID, and wherein the SR/LDP node further comprises amodule for incrementing the pointer to point to the first nodal segmentID.
 13. The apparatus of claim 10 wherein the packet is receivable bythe SR/LDP node with a second nodal segment ID and an adjacency segmentID attached to it, wherein the second nodal segment ID and adjacencysegment ID were advertised by the SR/LDP node, and wherein the SR/LDPnode further comprises a module for incrementing the pointer to point tothe adjacency segment ID and for incrementing the pointer to point tothe first nodal segment ID after the pointer is incremented to point tothe adjacency segment ID.
 14. The apparatus of claim 10 wherein thepacket is receivable by the SR/LDP node with a second nodal segment IDand an adjacency segment ID attached to it, wherein the packet isreceivable by the SR/LDP node with a pointer that points to the secondnodal segment ID wherein the second nodal segment ID and adjacencysegment ID were advertised by the SR/LDP node, and wherein the SR/LDPnode further comprises: an incrementing module for incrementing thepointer to point to the service segment ID; a processing module forprocessing the received packet in response to incrementing the pointerto point to the service segment ID; wherein the incrementing module isfurther configured to increment the pointer to point to the first nodalsegment ID after the packet is processed.
 15. The apparatus of claim 14wherein the processing module is configured to process the packet inaccordance with a deep packet inspection algorithm.
 16. The apparatus ofclaim 10 wherein the SR/LDP node further comprises a module forattaching a second label to the packet, wherein the forwarding module isconfigured to forward the packet with the attached first label and theattached first nodal segment to an LDP node.
 17. A system comprising: asegment routing/label distribution protocol (SR/LDP) node comprising aninput interface and an output interface, wherein the input interface isconfigured to receive a packet with an attached first nodal segment IDand an attached first label, wherein the first nodal segment ID wasadvertised by a first node; the SR/LDP node comprising a means fordetaching the first label from the packet.; the SR/LDP node comprising aforwarding means for forwarding the packet with attached first nodalsegment towards the first node via the output interface.
 18. The systemof claim 17 further comprising: an SR node comprising an input interfaceand an output interface, wherein the input interface configured toreceive the packet with the attached first nodal segment ID; the SR nodecomprising a means for mapping the first nodal segment ID to the SRnode's output interface; the SR node comprising a means for forwardingthe packet with the attached first nodal segment ID towards the firstnode via the SR node's output interface.
 19. The system of claim 17wherein the packet is receivable by the SR/LDP node with a second nodalsegment ID attached to it, wherein the second nodal segment ID wasadvertised by the SR/LDP node.
 20. The system of claim 19 wherein thepacket is receivable by the SR/LDP node with a pointer that points tothe second nodal segment ID, and wherein the SR/LDP node furthercomprises means for incrementing the pointer to point to the first nodalsegment ID.